Domain Flag Path Cookie_Name Cookie_VaIue Secure Expiration 



Cookie 1 



acme.com 


TRUE 


/ 


Name 


Alice 


FALSE 


12/31/99 



Cookie n 



acme.com 


TRUE 


/ 


Role 


manager 


FALSE 


12/31/99 



Figure 1: An Example of Cookies on the Web 



IP.Cookie 


Domain Rag Path Cookie_Name Cookie_Value Secure Expiration 


acme.com 


TRUE 


/ 


IP_Cookie 


129.174.100.88 


FALSE 


12/31/99 | 


Pswd_Cookie 








acme.com 


TRUE 


/ 


Pswd_Cookie 


hashed_password 


FALSE 


12/31/99 


KT_Cookie 






acme.com 


TRUE 


/ 


Kerberos_Ticket 


{Alice, Kc.s}Ks 


FALSE 


12/31/99 


Sign_Cookie 










acme.com 


TRUE 


/ 


Sign_Cookie 


Signature_of_Alice 


FALSE 


12/31/99 



Figure 2: Authentication Cookies 



KDC 



^ 1 . Request TGT 

2. TGT.Cookie = {TGT, Sa}Kc 

^ 3. TGT_Cookie = TGT 

TSK.Cookie 

4. KT_Cookie =Tcs 

KC_Cookie = {Kc.s, Bob}S A 



TSK_Cookie : Timestamp for the KDC 
KT_Cookie : Kerberos Ticket Cookie 
KC_Cookie : Kerberos Client Cookie 
TSS_Cookie : Timestamp for the Server 



Client 
(Alice) 



TGT= {Sa, Alice} Kjcdc 
TSK^Cookie = { timestamp } Sa , Alice, Bob 
T cs = {Alice, KcsJKs (ticket to Bob) 
TSS_Cookie = { timestamp }Kcs 
TSS'_Cookie = {timestamp+1 }Kcs 



5. KT.Cookie =Tcs 
TSS_Cookie 

6. TSS'.Cookie 



Server 
(Bob) 



Figure 3: Kerberos-based Authentication with cookies 



_ Domain _ Flag_ Path _ Cookie_Name Cookie_ Value Secure^ Expiration^ 



Cookie 1 



Cookie n 
Pswd_Cookiei 

Key_Cookie 



Seal_Cookie 



acmexom 


TRUE 


/ 


Name 


Alice* 


FALSE 


12/31/99 






J acme.com 


TRUE 


/ 


Role 


manager* 


FALSE 


12/31/99 | 






J acme.com 


TRUE 


/ 


Pswd_Cookie 


h as hed_pas sword 


FALSE 


12/31/99 J 








| acme.com 


TRUE 


/ 


Key_Cookie 


encryped_key* 


FALSE 


12/31/99 j 








**• 

-»■* 


acme.com 


TRUE 


/ 


Seal_Cookie 


Seal_of_Cookies** 


FALSE 


12/31/99 



* Sensitive fields can be encrypted in the cookies. 
** Seal of Cookies can be either MAC or signed message digest of cookies. 

Pswd.Cookie can be replaced with one of other authentication cookies in Figure 2 



Figure 4: A Set of Secure Cookies on the Web 




Pswd.Cookie can be replaced with one of other authentication cookies in Figure 2 



Figure 5: How to use Secure Cookies on the Web 



Domain 



g Path Cookie_Name Cookie_V; 



m 



Secure Expiration 



Cookie 1 
Card_Cookie 

Coupon_Cookie j 
Pswd_Cookiei 
Key_Cookie 



Seal Cookie 



acme.com 


TRUE 


/ 


Name 


Alice* I FALSE 


12/31/99 




acme.com 


TRUE 


/ 


Card 


number:: 123456789* & 
exp_date: : Jan.2000* 


FALSE 


12/31/99 




acme.com 


TRUE 


/ 


Coupon 


ID::123&off::10%* 


FALSE 


12/25/98 




acme.com 


TRUE 


/ 


Pswd_Cookie 


hashed_password 


FALSE 


12/31/99 




acme.com 


TRUE 


/ 


Key_Cookie 


encryped_key* 


FALSE 


12/31/99 


""""----.^^ Sealing Cookies ^ ~ ~ 


acme.com 


TRUE 


/ 


Seal_Cookie 


Seal_of_Cookies* * 


FALSE 


12/31/99 



* Sensitive fields can be encrypted in the cookies. 
** Seal of Cookies can be either MAC or signed message digest of cookies. 

PswcLCookie can be replaced with one of other authentication cookies in Figure 2 



Figure 6: An Example of Secure Cookies for Electronic Transactions 



Domain Path Cookie JMame CookieJValue Secure Expiration 



Cookie 1 1 


acme.com 


TRUE 


/ 


Name 


Alice* 


FALSE 


| 12/31/99 j 


















Ticket_Cookiei 


acmexom 


TRUE 


/ 


Ticket 


ID::456&Hours::10* 


FALSE 


J 12/25/98 | 


















Pswd_Cookie* 


acme.com 


TRUE 


/ 


Pswd_Cookie 


hashed_password 


FALSE 


12/31/99 






Key_Cookie ( 


acme.com 


TRUE 


/ 


Key_Cookie 


encryped_key* 


FALSE 


| 12/31/99 | 


U 






r ~ ~ ~ - 


Sealing Cookies 






Seal_Cookie 


acme. com 


TRUE 


/ 


Seal_Cookie 


Seal_of_Cookies** 


FALSE 


| 12/31/99 | 



* Sensitive fields can be encrypted in the cookies. 
** Seal of Cookies can be either MAC or signed message digest of cookies. 
PswcLCookie can be replaced with one of other authentication cookies in Figure 2 

Figure 7: An Example of Secure Cookies for Pay-per- Access 



• 



\ 

t 




Figure 8: A Schematic of RBAC on the Web 



